Skip to content
Ransomware group

blue_locker

Blue Locker is a ransomware threat actor identified in reporting as targeting the oil and gas sector in Pakistan.

Profile source: Mallory opens in a new tab

blue_locker

Family profile

Blue Locker is a ransomware threat actor identified in reporting as targeting the oil and gas sector in Pakistan. The provided content explicitly mentions the group in the context of 'Blue Locker' ransomware targeting Pakistan's oil and gas sector. No additional high-confidence details on tooling, tactics, techniques, attribution, sub-groups, or further aliases are provided beyond the alias/name blue_locker.

Ransomware.live

Operational record

View group record ↗

Ransomware.live

Published indicators

Full source record ↗

Sha256

4 total
  • d3cc6cc4538d57f2d1f8a9d46a3e8be73ed849f7fe37d1d969c0377cf1d0fadc
  • e6bd4ed287d1336206f5b4b65011e570267418799eb60c2d0d7496d5d9e95a33
  • 6eeb20cc709a18bf8845f7b678967b7f0ff96475cf51a261da87244886bbfd2e
  • 515bd71a8b3c2bce7b40b89ddfe2e94d332b0779d569c58117f8dcdcb8a91ed9

Tox

1 total
  • 24CCCF90893D73BE99427731EFBA1A11C015D574EC433EA44908B6B6F20FB34AF56622F8A4E8

MITRE ATT&CK

blue_locker in ATT&CK

15 distinct techniques

We appreciate you

Derp wouldn't exist without the work these projects do for the security community. We rely on their data sources to improve the quality and depth of what we publish. Thank you, we're genuinely grateful.